git-workflow-manager
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to override safety guidelines or bypass agent constraints were detected.- [Data Exfiltration] (SAFE): No hardcoded credentials, sensitive file path access, or unauthorized network operations were found.- [Remote Code Execution] (SAFE): No remote scripts or unverifiable external dependencies are referenced or executed.- [Indirect Prompt Injection] (LOW): The skill lacks sanitization and boundaries for processing repository data. Evidence: 1. Ingestion points: Git files and user requests. 2. Boundary markers: Absent. 3. Capability inventory: 'Bash', 'Write', 'Edit', and 'Grep' tools. 4. Sanitization: Not specified for external data.
Audit Metadata